prosody-0.11.5-bp152.1.18

- Update to 0.11.5:
  Fixes and improvements:
  * prosody / mod_posix: Support for command-line flags to
    override ‘daemonize’ config option
  Minor changes:
  * mod_websocket: Clear mask bit when reflecting ping frames
    (fixes #1484: Websocket masks pong answer)

- Update to 0.11.4:
  Fixes and improvements:
  * core.rostermanager: Improve performance by caching rosters of offline #1233
  * mod_pep: Handling subscriptions more efficiently #1372
  Minor changes:
  * util.interpolation: Support unescaped variables with more modifiers #1452
  * MUC: Mark source of historic messages correctly #1416
  * mod_auth_internal_hashed: Pass on errors #1477
  * mod_mam, mod_muc_mam: Improve logging of failures #1478, #1480, #1481
  * mod_muc, mod_muc_mam: Reschedule message expiry in case of failure
  * mod_mam: Add flag to session when it performs a MAM query
  * prosodyctl check: Warn about conflict between mod_pep and mod_pep_simple
  * prosodyctl check: Warn about conflict between mod_vcard and mod_vcard_legacy #1469
  * core.modulemanager: Disable mod_vcard if mod_vcard_legacy is enabled to prevent conflict #1469
  * MUC: Strip tags with MUC-related namespaces from private messages #1427
  * MUC: Don’t advertise registration feature on host #1451
  * mod_vcard_legacy: Fix handling of empty photo elements #1432
  * mod_vcard_legacy: Advertise lack of avatar correctly #1431
  * prosodyctl: Handle if the setting proxy65_address has the wrong type
  * prosodyctl: Print a blank line to improve spacing and readability
  * MUC: Fix role loss in Nickname change #1466
  * util.pposix: Fix reporting of memory usage in 2-4GB range #1445
  * util.startup: Fix a regression concerning directory paths #1430
  * mod_websocket: Don’t mask WebSocket pong answers #1484
  * net.resolvers: Apply IDNA conversion to ascii for DNS lookups (affects only HTTP queries) #1426
  * net.resolvers.basic: Fix resolution of IPv6 literals (in brackets) #1459

- Update to 0.11.3:
  * MUC: Advertise XEP-0410 support
  * mod_muc_mam: Import cleanup mechanism from mod_mam (fixes #672: mod_muc_mam: Archive expiry)
  * mod_bosh: Handle missing wait attribute (fixes #1288: BOSH: Traceback on missing ‘wait’ attribute)
  * mod_storage_sql: Handle SQLite DELETE with LIMIT being optional (fixes #1359: Sqlite3 archive_store:delete error in prepared statement)
  * mod_c2s: Fixed #1313: attempt to call a field ‘data’ (a nil value))
  * net.server_epoll: Restore wantread flag after pause (fixes #1354: server_epoll: Race in chunked reads)
  * util.encodings: Allow unassigned code points in ICU mode to match libidn behavior (fixes #1348: Different treatment of unassigned code points between libidn and ICU )
  * util.ip: Add missing netmask for 192.168⁄16 range (fixes #1343)
  * util.hashes: Use HMAC function provided by OpenSSL (fixes #1345: util.hashes: HMAC-SHA-512 implementation broken)
  * net.dns: Close resolv.conf handle when done (fixes #1342)
  * mod_websocket: Clone stanza before mutating (fixes #1398: mod_websocket leaks explicit xmlns attr)
  * mod_announce: Check for admin on current virtualhost instead of global (fixes #1365: “host admins” should be able to use mod_announce as well as “global admins”) (thanks yc)
  * mod_blocklist: Trigger resend of presence when unblocking a contact (fixes #1380: Prosody does not send presence when unblocking (XEP-0191))
  * mod_vcard_legacy: Multiple improvements (fixes #1289: mod_vcard_legacy upgrade experience):
  - mod_vcard_legacy: Don’t overwrite existing PEP data
  - mod_vcard_legacy: Handle partial migration
  - mod_vcard_legacy: Allow disabling vcard conversion
  - mod_vcard_legacy: Adapt node defaults to number of avatars
  * mod_muc_mam: Strip the stanza ‘to’ attribute (fixes #1259: [muc_mam] forwarded stanza has a “to” attribute while spec says it MUST NOT)
  * util.pubsub: Validate node configuration on node creation (fixes #1328: Pubsub: Node configuration not validated on node creation)
  * mod_pep/mod_pubsub: Simplify configuration for storage of node data (fixes #1320)
  * MUC: Fix delay@from to be room JID (fixes #1416: MUC: Wrong delay@from on historic messages)
  * mod_mam/mod_muc_mam: Cache last date that archive owner has messages to reduce writes (fixes #1368: Archive cleanup doubles number of storage access)
  * mod_mam: Perform message expiry based on building an index by date (backport of 39ee70fbb009 from trunk)
- For details see: https://blog.prosody.im/prosody-0.11.3-released/
- Remove prosody-0.11-upstream-fixes.patch

- bsc#1141599: Add upstream fixes on 0.11 branch since 0.11.2
  * Add prosody-0.11-upstream-fixes.patch: Up to 9712:7a36b7ac309b

- bsc#1130588: Require shadow instead of old pwdutils

- Update to 0.11.2:
  * mod_csi_simple: Multiple enhancements to built-in ‘importance’ rules (fixes #1250)
  * mod_vcard_legacy: Limit injection of XEP-0153 to normal presence (fixes #1252)
  * util.datetime: Make sure timezone difference is calculated correctly (fixes #1262)
  * MUC: Fix traceback when requesting voice (fixes #1269) (thanks jonas’)
  * MUC: Adjust priorities of muc-get-default-role handlers (fixes #1272)
  * MUC: Allow changing data attached to an only owner (fixes #1273)
  * Multiple fixes and improvements to our experimental epoll (non-libevent) backend
  * util.stanza: Deserialize stanza without mutating input (fixes #711)
  * mod_mam: Only accept valid JIDs in and prefs. (fixes #1275)
  * util.pubsub: Restore subscription index from stored data (fixes #1281)
  * prosodyctl check: Add statisticsmanager settings to known global options
  * util.startup: Always reload logging after config (fixes #1284)
  * mod_posix: Don’t reload log files twice
- Run spec-cleaner

- Update to 0.11.1:
  * Fixes and improvements
  - mod_csi_simple: Don’t set stamps on stanzas (fixes #1248)
  - mod_csi_simple: Bypass importance event in active mode (fixes #1249)
  * Minor changes
  - mod_csi_simple: Use the same event name when firing as when hooking (fixes #1245)
  - mod_csi: Set session.state to simplify CSI modules
  - MUC: Fix traceback on muc#admin query with missing child (#1242)
- Fix build error for Leap 42.3

- Update to 0.11.0:
  * Rewritten more extensible MUC module
    + Store inactive rooms to disk
    + Store rooms to disk on shutdown
    + Voice requests
    + Tombstones in place of destroyed rooms
  * PubSub features
    + Persistence
    + Affiliations
    + Access models
    + "publish-options"
  * PEP now uses our pubsub code and now shares the above features
  * Asynchronous operations
  * Busted for tests
  * mod\_muc\_mam (XEP-0313 in groupchats)
  * mod\_vcard\_legacy (XEP-0398)
  * mod\_vcard4 (XEP-0292)
  * mod\_csi, mod\_csi\_simple (XEP-0352)
  * New experimental network backend "epoll"
- For more details see:
  * https://blog.prosody.im/prosody-0-11-0-released/
  * https://prosody.im/doc/release/0.11.0#upgrade_notes
- Remove prosody-makefile.patch: configure supports --libdir now
- Update prosody-configure.patch: no libdir manipulation required
- Update prosody-cfg.patch: refresh and remove posix part.
  It's enabled by default.

- Update to 0.11.13:
  * util.xml: Break reference to help the GC (fixes #1711)
  * util.xml: Deduplicate handlers for restricted XML

- Update to 0.11.12:
  * util.xml: Do not allow doctypes, comments or processing
    instructions (CVE-2022-0217)

- Update to 0.11.11:
  Fixes and improvements:
  * net.server_epoll: Prioritize network events over timers to improve
    performance under heavy load
  * mod_pep: Add some memory usage limits
  * mod_pep: Prevent creation of services for non-existent users
  * mod_pep: Free resources on user deletion (needed a restart previously)
  Minor changes:
  * mod_pep: Free resources on reload
  * mod_c2s: Indicate stream secure state in error text when no stream features to offer
  * MUC: Fix logic for access to affiliation lists
  * net.server_epoll: Improvements to shutdown procedure #1670
  * net.server_epoll: Fix potential issue with rescheduling of timers
  * prosodyctl: Fix to ensure LuaFileSystem is loaded when needed
  * util.startup: Fix handling of unknown command line flags (e.g. -h)
  * Fix version number reported as ‘unknown’ on *BSD

- Added hardening to systemd service(s) (bsc#1181400). Modified:
  * prosody.service

- Update to 0.11.10:
  Security:
  * MUC: Fix logic for access to affiliation lists CVE-2021-37601
    https://prosody.im/security/advisory_20210722/
  Minor changes:
  * prosodyctl: Add ‘limits’ to known globals to warn about misplacing it
  * util.ip: Fix netmask for link-local address range
  * mod_pep: Remove obsolete node restoration code
  * util.pubsub: Fix traceback if node data not initialized
- Update is related to: bsc#1188976 CVE-2021-37601

- bsc#1117774 - Update to 0.10.3:
  Security:
  * Don?t list room occupants in service discovery (fixes #1162)
  Fixes and improvements:
  * mod_component: Fix a wrongly-placed closing parenthesis, fixes #1164.
  * net.dns: Cache all records from the ?answer? and ?additional? sections (fixes #487)
  * net.dns: Don?t attempt to cache unparsed data (fixes #1056)
  * mod_mam: Handle edge-case of max=0 so that complete attr is set (fixes #1128)
  * mod_s2s: Close sockets held by resolver (#1170)
  * mod_admin_telnet: Add debug:events() and debug:logevents()
  * Logging: Improvements to balance logging of stanzas during routing (#776)
  * util.pposix: Fix building on OS X (#1202)
  * mod_http: Make sure path from http_external_url always ends with a slash (fixes #1183)
  Minor changes:
  * prosodyctl: Make log level configurable through PROSODYCTL_LOG_LEVEL (useful for debugging)
  * prosodyctl: Allow cert dir to not be owned by root (fixes #1075)
  * prosodyctl: Change ownership of certs to same as the cert base dir when running from a source checkout
  * prosodyctl: Warn if attempting to run an unknown check (fixes #1161)
  * mod_s2s: Fix DNS timeout setting for per-session resolvers (fixes #1167)
  * mod_groups: Log a warning about invalid JIDs (#1180)
  * mod_proxy65: Return an error if no port is open (fixes #1240)
  * API: Add stanza method for removing all children with a specific name, xmlns

- bsc#1094890 - (CVE-2018-10847):
  Submit 0.10.2 containing the fix to Leap 15.0

- Update to 0.10.2:
  Security:
  * mod_c2s: Do not allow the stream ‘to’ to change across stream restarts (fixes #1147)
  Minor changes:
  * mod_websocket: Store the request object on the session for use by other modules (fixes #1153)
  * mod_c2s: Avoid concatenating potential nil value (fixes #753)
  * core.certmanager: Allow all non-whitespace in service name (fixes #1019)
  * mod_disco: Skip code specific to disco on user accounts (avoids invoking usermanager, fixes #1150)
  * mod_bosh: Store the normalized hostname on session (fixes #1151)
  * MUC: Fix error logged when no persistent rooms present (fixes #1154)
- change /usr/bin/env lua5.1 to /usr/bin/lua5.1 to fix the env-script-interpreter rpmlint error

- Update to 0.10.1:
  Security:
  * SQL: Ensure user archives are purged when a user account is deleted (fixes #1009[1])
  Fixes and improvements:
  * Core: More robust signal handling (fixes #1047[2], #1029[3])
  * MUC: Ensure that elements which match our from are stripped (fixes #1055[4])
  * MUC: More robust handling of storage failures (fixes #1091[5], #1091[5])
  * mod_mam: Ensure a user's archiving preferences apply even when they are offline (fixes #1024[6])
  * Compatibility improvements with LuaSec 0.7, improving curve support
  * mod_stanza_debug: New module that logs full stanzas sent and received for debugging purposes
  * mod_mam: Implement option to enable MAM implicitly when client support is detected (#867[7])
  * mod_mam: Add an option for whether to include 'total' counts by default in queries (for performance)
  * MUC: send muc#stanza_id feature as per XEP-0045 v1.31 (fixes #1097[8])
  Minor changes:
  * SQL: Suppress error log if a transaction failed but was retried ok
  * core.stanza_router: Verify that xmlns exists for firing stanza/iq/xmlns/name events (fixes #1022[9]) (thanks SamWhited)
  * mod_carbons: Synthesize a 'to' attribute for carbons of stanzas to "self" (fixes #956[10])
  * Core: Re-enable timestamps by default when logging to files (fixes #1004[11])
  * HTTP: Report HTML Content-Type on error pages (fixes #1030[12])
  * mod_c2s: Set a default value for c2s_timeout (fixes #1036[13])
  * prosodyctl: Fix traceback with lfs < 1.6.2 and show warning
  * Fix incorrect '::' compression of a single 0-group which broke some IPv6 address matching
  * mod_dialback: Copy function from mod_s2s instead of depending on it, which made it harder to disable s2s (fixes #1050[14])
  * mod_storage_sql: Add an index to SQL archive stores to improve performance of some queries
  * MUC: Don't attempt to reply to errors with more errors (fixes #1122[15])
  * Module API: Fix parameter order to http client callbacks
  * mod_blocklist: Allow mod_presence to handle subscription stanzas before bouncing outgoing presence (fixes #575[16])
  * mod_http_files: Fix directory listing cache entries not expiring (fixes #1130[17])

- Add pid file location to default config
  Seems this got lost with the update to 0.10.0
- enable mod_posix

- add lua51-BitOp as dependency for mod_websocket
  https://prosody.im/doc/packagers#section010

- Update to 0.10.0:
  See https://blog.prosody.im/prosody-0-10-0-released/ for details
- Remove because contained in new upstream:
  * prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch
  * prosody-backport-555.patch
  * prosody-local-socket.patch
- Update:
  * prosody-configure.patch
  * prosody-makefile.patch
  * prosody-cfg.patch

- Update prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch:
  * mod_c2s: Iterate over child tags instead of child nodes in
    stream error (fixes traceback from #987)
  * mod_component, mod_s2s: Iterate over child tags instead of
    child nodes (can include text) in stream error
  (same as 176b7f4e4ac9)

- Add prosody-backport-555.patch to backport the fix of issue #555:
  * net.dns: Use new IPv4-specific socket factory if available (fixes dns on libevent with latest development version of luasocket)

- Add prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch to
  get the following bugfixes:
  * core.rostermanager: Add method for checking if the user is subscribed to a contact
  * mod_presence: Send probe once subscribed (fixes #794)
  * mod_net_multiplex: Enable SSL on the SSL port (fixes #803)
  * mod_register: Require encryption before registration if c2s_require_encryption is set (fixes #595)
  * mod_saslauth: Log SASL failure reason
  * mod_disco: Correctly set the 'node' attr (fixes #449)
  * mod_bosh: Update session.conn to point to the current connection (fixes #890)
  * net.dns: Simplify expiry calculation (fixes #919)
  * mod_watchregistrations: Return the pointer to the root of the stanza, fixes #922.
  * mod_disco: Add an account/registered identity on subscribed accounts, fixes #826.
  * mod_welcome: Return the pointer to the root of the stanza, fixes a bug similar to #922.
  * net.dns: Prevent answers from immediately expiring even if TTL=0 (see #919)
  * mod_saslauth: Use correct varible name (thanks Roi)
  * util.dependencies: Add compatibility code for LuaSocket no longer exporting as a global
  * util.dependencies: Add comment about LuaSec compat

- Replace filler wording in description with content.

- Add patch to fix crash "attempt to index global 'socket'":
  * prosody-local-socket.patch

- Drop the systemd conditional as all systems have systemd now for
  our purposes.
- Switch back to lua5.1 as 0.9 prosody works only with that

- Build against lua5.3 instead of lua5.1

- Fix build with namespaced lua

- added patch: prosody-lua51coexist.patch
  * makes prosody work on systems that have lua 5.1 and lua 5.2 installed.

- Update to 0.9.12:
  * Dependencies: Fix certificate verification failures when using LuaSec 0.6 (fixes #781)
  * mod_s2s: Lower log message to 'warn' level, standard for remotely-triggered protocol issues
  * certs/Makefile: Remove -c flag from chmod call (a GNU extension)
  * Networking: Prevent writes after a handler is closed (fixes #783)

- Update to 0.9.11:
  * HTTP parser: Improve buffering of incoming HTTP data and add size
  limits (#603)
  * Sessionmanager: Fix for an issue which caused people to be kicked from conferences if mod_smacks was enabled (#648)
  * Dependencies: Workaround for compatibility with LuaSec 0.6 (#749)
  * MUC: Accept missing form as "instant room" request (#377)
  * C2S: Fix issues with destroying disconnected connections (#590), (#641)
  * mod_privacy: Fix selection of the top resource(s) #694
  * mod_presence: Make sure both users get each others presence after adding each other (#673)
  * mod_http_files: Fix traceback when serving a non-wildcard path (#611)
  * mod_http_files: Preserve a trailing slash in paths (#639)
  * util.datamanager: Fix error handling (#632)
  * net.server_event: Fix internal socket API to allow writing from socket.ondrain callback (#661)
  * net.server_event: Fix timeout (commit 1909bde0e79f)
  * net.server_event: Fix traceback due to write during TLS handshake (commit c774622ad9db)
  * net.server_event: Fix buffer length check (commit 206f9b0485ad)
- Remove prosody-upstream-0.9-branch-fixes.patch: included in update

- Change license to MIT

- Add prosody-upstream-0.9-branch-fixes.patch:
  Upstream pushes all fixes for a certain release to its own branch.
  See: https://prosody.im/files/branches_explained.png
  After some time, mostly when a security bug is found, they do a
  new minor release.
  The fixes however are often needed to make prosody run smoothly
  with its community modules. Thus I monitor them and add the patch
  set. It's only fixes no new features.

- Remove prosody-rpmlintrc: Not needed since last cleanup